Package impact
Packagist / cockpit-hq/cockpit
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-38993 | medium | 6.5 | 6.5 | 1mo ago | Cockpit is vulnerable to directory traversal | |||
| CVE-2026-6626 | medium | 6.3 | 6.3 | 2mo ago | Cockpit has NoSQL Injection Through Content Aggregation Pipelines | |||
| CVE-2026-23695 | medium | 5.4 | 5.4 | 20d ago | Cockpit CMS: Stored cross-site scripting vulnerability in the Set field type's Display template option |